DevSecOps Engineer

At Mindbox we connect top IT talents with technology projects for leading enterprises across Europe.

Join our client’s team as a DevSecOps Engineer!

Are you an expert in CI/CD platforms with a strong security mindset? We are seeking a DevSecOps Engineer to design and evolve secure, high-performance build pipelines for multi-language applications, ensuring supply chain integrity and compliance in a global environment.

Sounds like your kind of challenge?

#LI- Hybrid – 6 days a month from the office in Kraków

What you’ll be doing

Design, implement, and maintain Groovy-based Jenkins pipeline steps for build, test, packaging, scanning, and deployment.
Extend and refine Python tooling for SLSA provenance, SBOM generation, hash/digest verification, and security scan aggregation (SonarQube, Sonatype IQ, SAST, container scans).
Optimize pipeline performance through parallelization, caching, and smart dependency management.
Ensure artifact integrity, reproducible builds, and accurate cryptographic mappings (SHA1/SHA256).
Refactor legacy scripts for stability and compliance, apply standard templates, and eliminate global state issues.
Define and document ci-config.yaml standards and enforce usage patterns.
Mentor teams on DevSecOps best practices, supply chain security, and secure pipeline design.
Troubleshoot and proactively prevent pipeline incidents across environments.

Note: Detailed project information will be shared during the recruitment process.

What you get in return

Flexible cooperation model – choose the form that suits you best
(B2B, employment contract, etc.)
Hybrid work setup – 6 days a month from the office in Kraków
Collaborative team culture – work alongside experienced professionals eager to share knowledge
Continuous development – access to training platforms and growth opportunities
Comprehensive benefits – including Interpolska Health Care, Multisport card, Warta Insurance, and more
High quality equipment – laptop and essential software provided

Who we’re looking for

Experience & Skills:
- Minimum 7+ years in engineering roles, with 3+ years in DevSecOps or CI/CD platform engineering.
- Strong hands-on expertise with Jenkins Shared Libraries (Groovy).
- Advanced Python programming for automation, YAML/JSON parsing, and tooling development.
- Solid understanding of multi-language build pipelines: Java/Maven, Node/NPM, Python, with exposure to Helm, Terraform, and container image metadata handling.
Security Expertise:
- Deep knowledge of supply chain security standards (e.g., SLSA, SBOM via CycloneDX, artifact digests).
- Experience with static and container scanning tools: SonarQube, Sonatype IQ, SAST.
Performance Tuning:
- Proven ability in build optimization techniques, caching, and dependency pruning.
Compliance Awareness & Documentation Discipline.

Joining this project you’ll become part of Mindbox – a tech-driven company where consulting, engineering, and talent meet to build meaningful digital solutions. We’ll back you up every step of the way, accelerate your development, and ensure your skills make a difference.

DevSecOps Engineer

Kraków

B2B

1200-1450 PLN/MD netto + VAT

Apply for position

I will handle your recruitment

Anna Rodak-Bucka

SUPPORT & BENEFITS

Private healthcare

Fast access to doctors and medical tests.

Mindbox fully covers the individual package. You can extend the coverage to your partner and family on preferential terms. A wide network of medical providers and clear rules for everyday use.

Multisport

Energy that pays off.

We cover 50% of the card cost. You get access to thousands of sports facilities across Poland, plus a convenient mobile app. Additional cards for family members are available.

Training & development

Practical support for your career growth.

We co‑fund courses, certifications and conferences under a clear Training Policy. You also get access to a library of recorded webinars and trainings – available whenever you need them.

Eyewear or contact lenses co‑funding

Clear vision means comfortable work.

Up to PLN 500 every two years, with an additional PLN 300 available in justified cases. Simple reimbursement, regardless of your form of cooperation.

Group life insurance

Real protection from day one.

Option I is fully funded by Mindbox, Option II is co‑funded. You can include your partner and adult children, with coverage that also applies to treatment and hospitalisation abroad.

Ongoing support from the Talent Network Development

You’re not on your own in a project.

Regular contact, quick response and a partnership‑based approach. You focus on your work — we help take care of the rest.

Regular integration meet‑ups

Relationships that work beyond the project.

Cyclical meet‑ups for contractors in major cities across Poland. A space to talk, exchange experience and stay in real contact with the Mindbox team.

Annual company‑wide integration

One event. The whole community.

A two‑day company gathering with accommodation, transport and a full activity programme. Time to connect teams from across Poland and build shared experiences.